CVE-2019-15019

Published: Oct 9, 2019Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

A security vulnerability exists in the Zingbox Inspector versions 1.294 and earlier, that could allow an attacker to supply an invalid software update image to the Zingbox Inspector.

Affected (1)

Products: Zingbox: Inspector

Zingbox

1 product

Inspector

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Zingbox Inspector	Up to 1.294

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (2)

https://security.paloaltonetworks.com/CVE-2019-15019

Source: psirt@paloaltonetworks.com

Third Party Advisory

https://security.paloaltonetworks.com/CVE-2019-15019

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.